PT-2008-6256 · Adobe · Flash Media Server

Published

2008-11-25

Updated

2008-11-26

CVE-2008-5109

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Flash Media Server version 3.0

Description The default configuration of Adobe Flash Media Server does not enable SWF Verification for RTMPE and RTMPTE sessions, making it easier for remote attackers to make copies of video content via stream-capture software.

Recommendations For Adobe Flash Media Server version 3.0, enable SWF Verification for RTMPE and RTMPTE sessions to prevent unauthorized copying of video content.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-16

Related Identifiers

CVE-2008-5109

Affected Products

Flash Media Server

PT-2008-6256 · Adobe · Flash Media Server

CVE-2008-5109

Weakness Enumeration

Related Identifiers

Affected Products

References · 4